I have a syslog receiver that is working and receiving message for a sonicwall firewall. The message come in but when i check in the Web GUI under messages, only the message, severity and Facility fields are filled in. How can I get PRTG parse the message and put the information into the correct field in the database. for example The full message contains the message id, how do I get this out of the message and into the Msg ID field for the database so that I can sort on this or query on this
Article Comments
Attention: This article is a record of a conversation with the Paessler support team. The information in this conversation is not updated to preserve the historical record. As a result, some of the information or recommendations in this conversation might be out of date.
Hm, this can't be extracted properly, at least within the sensor. Can you check if it works as expected with the Kiwi Syslog Server (free)? If so, please provide us with an actual Wireshark capture of the syslog message so we can check out what's going on with the packet :) Thanks in advance!
Kind regards,
Stephan Linke, Tech Support Team
Jul, 2018 - Permalink